$ rpki-client -vvf rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.mft File: qZ9mmGknIBFUlstFlwLEOtxI1q0.mft (raw, json) Hash identifier: TGvMNUnPXz+oy8FUukaCFWPyo3Ej8lmYyw7CeoAw6ZA= Subject key identifier: CC:26:59:CB:60:E5:FD:35:55:EF:B2:44:17:B7:0C:3F:05:2B:2B:53 Authority key identifier: A9:9F:66:98:69:27:20:11:54:96:CB:45:97:02:C4:3A:DC:48:D6:AD Certificate issuer: /CN=A91CACCA/serialNumber=A99F6698692720115496CB459702C43ADC48D6AD Certificate serial: 34CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZ9mmGknIBFUlstFlwLEOtxI1q0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.mft Manifest number: 34CD Signing time: Sat 18 Oct 2025 15:25:58 +0000 Manifest this update: Sat 18 Oct 2025 15:25:57 +0000 Manifest next update: Sat 25 Oct 2025 15:25:57 +0000 Files and hashes: 1: qZ9mmGknIBFUlstFlwLEOtxI1q0.crl (hash: SYVopvbyVkpOnoyqZJY3JpJjTP66k7msnM6bQzw24hU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.crl rsync://rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZ9mmGknIBFUlstFlwLEOtxI1q0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:25:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13517 (0x34cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CACCA, serialNumber=A99F6698692720115496CB459702C43ADC48D6AD Validity Not Before: Oct 18 15:25:57 2025 GMT Not After : Oct 25 15:25:57 2025 GMT Subject: CN=68f3b186-1a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:9a:48:c6:c8:01:80:b8:a6:12:5d:79:df:e1: 4e:64:8f:e3:15:54:2c:be:2f:97:8f:c3:33:dc:66: 4f:e2:b1:d5:11:6b:73:b7:f1:fe:b2:d9:e3:ac:a3: 00:9b:87:74:c1:d4:b5:54:09:4f:1c:d2:4d:a7:b2: 69:24:d7:e5:90:94:f4:8b:21:81:1b:25:2f:10:3c: f8:92:3b:1c:1e:dd:3c:02:4a:87:4d:64:7d:fe:19: 7c:3b:af:15:2f:d7:e6:04:2e:60:a5:5d:67:25:10: c2:2d:1a:9c:a3:28:c9:1f:1d:3d:22:ca:04:b3:b4: 57:52:0a:ad:db:fc:77:e1:ab:00:20:80:b0:98:84: dc:00:ab:cd:d1:77:fe:1c:bb:fe:91:00:c6:80:df: 1b:f5:90:31:ca:b5:d6:a7:54:13:24:d4:7c:de:d0: f0:37:dc:37:9c:cf:51:5f:4c:70:96:d2:50:ce:2a: 2c:08:64:8f:2b:97:77:cf:99:17:04:c0:14:70:59: 88:71:0c:e3:44:c9:25:9a:4f:8b:35:fc:d5:c8:13: 01:fe:d6:65:27:ae:8e:37:28:13:7d:85:01:42:cd: 1d:7c:1d:31:da:fd:ff:ac:be:55:94:b5:0e:3a:94: 97:d2:b9:55:57:7d:b8:4e:ef:46:a6:3a:9e:68:e1: bc:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:26:59:CB:60:E5:FD:35:55:EF:B2:44:17:B7:0C:3F:05:2B:2B:53 X509v3 Authority Key Identifier: keyid:A9:9F:66:98:69:27:20:11:54:96:CB:45:97:02:C4:3A:DC:48:D6:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZ9mmGknIBFUlstFlwLEOtxI1q0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:f2:a0:45:f7:96:ac:dd:eb:95:ce:c8:6a:57:16:97:a4:88: f7:0e:62:1c:26:01:2a:83:54:f4:9c:61:78:15:1f:68:0c:88: ed:83:f9:60:05:8e:79:5c:28:73:8e:12:a1:6e:b9:72:31:93: 2b:ec:3f:6a:2f:3e:1a:fe:d5:7d:f8:ef:b5:bf:5c:8c:b2:8d: 3d:9c:7c:53:a7:0b:e9:c1:6a:f0:ce:ed:83:64:23:b5:98:af: fe:e8:c2:7b:08:17:3e:79:59:a1:26:65:bd:1c:7f:9b:54:a8: 2c:41:e5:cd:db:f4:6c:66:27:9c:cc:41:c9:58:65:da:48:97: b6:73:ba:64:49:d0:48:c7:f9:03:3d:69:1f:40:8b:02:5d:3b: 5e:30:4f:54:3c:61:ff:33:95:7a:46:40:e4:df:49:3d:db:08: 8a:df:d7:23:62:42:04:fc:b6:84:33:7c:a4:10:40:ad:97:ed: 64:ab:9f:5c:bb:4d:93:7a:24:42:f7:8c:dd:28:37:7a:b1:b4: d0:4f:ea:1d:bb:e3:9e:42:8b:e6:ec:c1:03:ab:bc:81:08:d5: bb:ea:29:3a:ba:57:e8:fd:1a:7e:df:9d:57:66:fd:85:c8:46: 4f:ad:2d:d0:33:ac:8d:27:2c:02:bf:ec:51:4c:95:90:fc:bc: 0f:b3:22:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FDQ0ExMTAvBgNVBAUTKEE5OUY2Njk4NjkyNzIwMTE1NDk2Q0I0NTk3MDJDNDNB REM0OEQ2QUQwHhcNMjUxMDE4MTUyNTU3WhcNMjUxMDI1MTUyNTU3WjAYMRYwFAYD VQQDEw02OGYzYjE4Ni0xYTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmZpIxsgBgLimEl153+FOZI/jFVQsvi+Xj8Mz3GZP4rHVEWtzt/H+stnjrKMA m4d0wdS1VAlPHNJNp7JpJNflkJT0iyGBGyUvEDz4kjscHt08AkqHTWR9/hl8O68V L9fmBC5gpV1nJRDCLRqcoyjJHx09IsoEs7RXUgqt2/x34asAIICwmITcAKvN0Xf+ HLv+kQDGgN8b9ZAxyrXWp1QTJNR83tDwN9w3nM9RX0xwltJQziosCGSPK5d3z5kX BMAUcFmIcQzjRMklmk+LNfzVyBMB/tZlJ66ONygTfYUBQs0dfB0x2v3/rL5VlLUO OpSX0rlVV324Tu9GpjqeaOG8DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMwmWctg 5f01Ve+yRBe3DD8FKytTMB8GA1UdIwQYMBaAFKmfZphpJyARVJbLRZcCxDrcSNat MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUNDQS82MDg2RDc4MjFE QTkxMUUyQkIxQjRFQTQwOEIwMkNEMi9xWjltbUdrbklCRlVsc3RGbHdMRU90eEkx cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FaOW1tR2tuSUJGVWxzdEZsd0xFT3R4STFxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUNDQS82MDg2RDc4MjFEQTkxMUUyQkIxQjRFQTQwOEIwMkNEMi9xWjltbUdrbklC RlVsc3RGbHdMRU90eEkxcTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCk8qBF95as3euVzshqVxaXpIj3DmIcJgEqg1T0nGF4FR9oDIjtg/lg BY55XChzjhKhbrlyMZMr7D9qLz4a/tV9+O+1v1yMso09nHxTpwvpwWrwzu2DZCO1 mK/+6MJ7CBc+eVmhJmW9HH+bVKgsQeXN2/RsZieczEHJWGXaSJe2c7pkSdBIx/kD PWkfQIsCXTteME9UPGH/M5V6RkDk30k92wiK39cjYkIE/LaEM3ykEECtl+1kq59c u02TeiRC94zdKDd6sbTQT+odu+OeQovm7MEDq7yBCNW76ik6ulfo/Rp+351XZv2F yEZPrS3QM6yNJywCv+xRTJWQ/LwPsyLC -----END CERTIFICATE-----Generated at Sun Oct 19 23:29:04 2025 by rpki-client